Linux Compatible - Debian (Page 530)

MariaDB, ImageMagick, Chromium, hsqldb1.8.0 updates for Debian

Debian 10695 Published 2025-09-11 07:34 by Philipp Esselbach 0

Debian has released several security updates for various packages, including hsqldb1.8.0, Chromium, ImageMagick, and MariaDB-10.3. The hsqldb1.8.0 update fixes a vulnerability that allowed an attacker to execute spurious scripting commands in certain files. The Chromium update addresses security issues that could result in the execution of arbitrary code, denial of service, or information disclosure. The ImageMagick and MariaDB-10.3 updates fix multiple vulnerabilities, including heap buffer overflows, memory leaks, and Denial Of Service (DoS) attacks.

Debian GNU/Linux 10 (Buster) Extended LTS:
ELA-1501-1 mariadb-10.3 security update

Debian GNU/Linux 11 (Bullseye) LTS:
[DLA 4297-1] imagemagick security update

Debian GNU/Linux 12 (Bookworm) and 13 (Trixie):
[DSA 5996-1] chromium security update

Debian GNU/Linux 13 (Trixie):
[DSA 5995-1] hsqldb1.8.0 security update

Liquorix Kernel 6.16-5 Now Available for Enhanced System Performance

Debian 10695 Ubuntu 6924 Arch Linux 917 Published 2025-09-10 07:52 by Philipp Esselbach 0

Steven Barrett has announced the release of Liquorix kernel version 6.16-5, a distro kernel replacement optimized for desktop, multimedia, and gaming workloads. This updated kernel includes significant enhancements such as improved scheduling algorithms, increased system responsiveness, and optimized CPU frequency settings. Additionally, it features advanced technologies like High Resolution Scheduling, Preemptible tree-based hierarchical RCU, and Compressed Swap to provide a faster and more efficient computing experience. The Liquorix kernel is available for installation on Debian, Ubuntu, and Arch Linux systems through a simple script.

QEMU security update for Debian

Debian 10695 Published 2025-09-10 07:31 by Philipp Esselbach 0

A security update has been released for the QEMU package on Debian GNU/Linux 11 (Bullseye) LTS to address two issues that could result in denial of service and privilege escalation. The update removes the use of a flag that allowed privileged binaries to run with elevated privileges under QEMU, which may require changes for those relying on this behavior. The affected packages are qemu-user-static and qemu-user-binfmt, which have been fixed in version 1:5.2+dfsg-11+deb11u5.

[DLA 4296-1] qemu security update

Libhtp and OpenAFS updates for Debian 11 LTS

Debian 10695 Published 2025-09-09 07:54 by Philipp Esselbach 0

The Debian project has released two security advisories for Debian GNU/Linux 11 (Bullseye) LTS: DLA-4295-1 for libhtp and DLA-4168-2 for openafs. The libhtp advisory fixes multiple denial-of-service vulnerabilities, which have been fixed in version 1:0.5.36-1+deb11u1. Meanwhile, the OpenAFS advisory addresses a regression introduced by a missing commit, which has been resolved in version 1.8.6-5+deb11u2.

[DLA 4295-1] libhtp security update
[DLA 4168-2] openafs regression update

PHP 8.4.12 and 8.3.25 packages for Debian 11, 12, and 13 released

Debian 10695 Published 2025-09-08 16:34 by Philipp Esselbach 0

Ondřej Surý has released PHP 8.4.12 and 8.3.25 packages for Debian GNU/Linux 11 (Bullseye) LTS, 12 (Bookworm), and 13 (Trixie). The updates address various bugs and issues across different components, including Core, Calendar, FTP, GD, Hash, Intl, LDAP, LibXML, MbString, Opcache, OpenSSL, PDO Pgsql, Readline, SOAP, Sockets, and Standard. Fixes include resolving crashes, memory leaks, and incorrect return values, as well as addressing theoretical issues with unavailable functions.

Shibboleth-SP and Mod Security security updates for Debian

Debian 10695 Published 2025-09-08 08:00 by Philipp Esselbach 0

Debian has released security updates for two packages: Shibboleth-SP (DSA 5994-1) for both Debian GNU/Linux 12 (Bookworm) and 13 (Trixie) and modsecurity-apache (DLA 4294-1) for Debian GNU/Linux 11 (Bullseye) LTS. The Shibboleth-SP update fixes an SQL vulnerability in its ODBC plugin, which could result in an information leak. The modsecurity-apache update fixes a cross-site scripting issue caused by insufficient return value handling.

[DSA 5994-1] shibboleth-sp security update
[DLA 4294-1] modsecurity-apache security update

Debian GNU/Linux 13.1 Trixie Live Images released

Debian 10695 Published 2025-09-07 08:52 by Philipp Esselbach 0

The Debian GNU/Linux 13.1 "Trixie" Live Images have been released, featuring various desktop environments. The images are available for download and include options for GNOME (48.3), KDE Plasma (6.3.5), Xfce (4.20), Cinnamon (6.4.10), MATE (1.26), LXQt (2.1.0), and LXDE (0.99.3). Each image is designed to provide a live version of the Debian operating system, allowing users to test and explore different desktop environments before installation.

Wireless-RegDB new upstream version for Debian 11 LTS

Debian 10695 Published 2025-09-07 08:32 by Philipp Esselbach 0

An updated wireless-regdb package has been released for Debian GNU/Linux 11 (Bullseye) LTS. The updated version, 2025.07.10-1~deb11u1, includes changes to radio regulations in several countries.

[DLA 4293-1] wireless-regdb new upstream version

Debian GNU/Linux 13.1 released: The first Point Release of Trixie

Debian 10695 Published 2025-09-06 16:26 by Philipp Esselbach 0

Debian 13 Trixie has released its first point update, focusing on addressing security issues and resolving critical problems. The update includes various bug fixes and security updates for packages such as imagemagick, libcoap3, and postgresql-17, among others. Existing installations can be upgraded by pointing the package management system at one of Debian's many HTTP mirrors, while new installation images will soon be available at regular locations.

Debian GNU/Linux 12.12 released

Debian 10695 Published 2025-09-06 16:10 by Philipp Esselbach 0

The Debian project has released Debian GNU/Linux 12.12, which focuses on addressing security concerns and bug fixes in the existing old stable distribution. The release includes numerous security updates and bug fixes across a wide range of packages, including Apache2, Botan, Expatriated Expat, Glibc, Libxml2, OpenSSL, PostgreSQL-15, and Python-Django. This update aims to enhance the stability and security of the system, with the Debian Installer also updated to incorporate these fixes for new installations.

Chromium security update for Debian 12 and 13

Debian 10695 Published 2025-09-06 07:24 by Philipp Esselbach 0

Debian has released a security update for the Chromium package to address multiple vulnerabilities. These issues, identified by CVE IDs CVE-2025-9864 through CVE-2025-9867, could result in arbitrary code execution, denial of service, or information disclosure. The updates have been made available for both the Debian GNU/Linux 12 (Bookworm) and 13 (Trixie) distributions, with fixes included in versions 140.0.7339.80-1deb12u1 and 140.0.7339.80-1deb13u1, respectively.

[DSA 5993-1] chromium security update

Liquorix Linux Kernel 6.16-4 released

Debian 10695 Ubuntu 6924 Arch Linux 917 Published 2025-09-05 18:17 by Philipp Esselbach 0

Liquorix Linux Kernel 6.16-4, based on Kernel 6.16.5, has been released. Liquorix is a custom kernel designed for desktop, multimedia, and gaming workloads, offering improved responsiveness at the cost of throughput and power usage. It features various optimizations, including a different scheduler (bfq), improved virtual memory management, and enhanced CPUFreq settings to improve system performance under heavy loads. Liquorix also has special features like better scheduling, a more efficient way to manage resources, and compressed swap storage to use resources more effectively.

Clamav security updates for Debian 9, 10, and 11

Debian 10695 Published 2025-09-05 08:18 by Philipp Esselbach 0

A security update has been released for ClamAV, an antivirus utility for Unix, to address two vulnerabilities: CVE-2025-20128 and CVE-2025-20260. The first vulnerability lets an attacker make a device stop working by taking advantage of the Object Linking and Embedding 2 (OLE2) decryption process in ClamAV. The second vulnerability allows an attacker to cause a buffer overflow, denial of service, or execution of arbitrary code on an affected device by exploiting the PDF scanning processes in ClamAV. Users are advised to upgrade their ClamAV packages to version 1.0.9+dfsg-1deb11u1 (for Debian GNU/Linux 11 LTS) or 1.0.9+dfsg-1deb9u1 (for Debian GNU/Linux 9 ELTS) or 1.0.9+dfsg-1~deb10u1 (for Debian GNU/Linux 10 ELTS).

[DLA 4292-1] clamav security update
ELA-1511-1 clamav security update

Node-Cipher-Base updates for Debian

Debian 10695 Published 2025-09-04 08:37 by Philipp Esselbach 0

A security update has been released for the node-cipher-base package in Debian GNU/Linux 11 (Bullseye) LTS. The issue was caused by incomplete type checks when validating input and has been fixed in version 1.0.4-4+deb11u1. This update addresses a vulnerability identified as CVE-2025-9287.

[DLA 4291-1] node-cipher-base security update

Python-Eventlet and Python-H2 updates for Debian 11 LTS

Debian 10695 Published 2025-09-03 07:52 by Philipp Esselbach 0

Two new security updates are available for Debian GNU/Linux 11 (Bullseye) LTS to address vulnerabilities in the python-eventlet and python-h2 packages. The first update, DLA-4289-1, fixes a vulnerability in eventlet that allows attackers to bypass front-end security controls and launch targeted attacks against active site users. The second update, DLA-4290-1, addresses an HTTP/2 request splitting vulnerability in python-h2 that enables attackers to manipulate request boundaries and bypass security controls.

[DLA 4289-1] python-eventlet security update
[DLA 4290-1] python-h2 security update

Ruby-Saml and Libsndfile updates for Debian 11 LTS

Debian 10695 Published 2025-09-02 07:55 by Philipp Esselbach 0

Two security advisories have been issued for Debian GNU/Linux 11 (Bullseye) LTS, one for ruby-saml and another for libsndfile. The ruby-saml advisory fixes a Denial of Service (DoS) vulnerability caused by large SAML responses, which has been resolved in version 1.11.0-1+deb11u3. The libsndfile advisory addresses two vulnerabilities: CVE-2022-33065, which allows for DoS or unspecified impacts through signed integers overflow, and CVE-2024-50612, which causes memory corruption due to an out-of-bounds read in a specially crafted input file. It is recommended that users upgrade their packages to the latest versions (ruby-saml 1.11.0-1+deb11u3 and libsndfile 1.0.31-2+deb11u1) to resolve these security issues.

[DLA 4288-1] ruby-saml security update
[DLA-4287-1] libsndfile security update

OpenVPN and Libcommons-Lang-Java updates for Debian

Debian 10695 Published 2025-09-01 07:17 by Philipp Esselbach 0

Two Debian 11 (Bullseye) LTS advisories have been issued to address security vulnerabilities. DLA-4079-2 fixes a regression in openvpn by allowing "\n" and "\r" characters in control channel messages and recommends upgrading to version 2.5.1-3+deb11u2. DLA-4286-1 addresses an uncontrolled recursion vulnerability (CVE-2025-48924) in the libcommons-lang3-java package by updating it to version 3.11-1+deb11u1. This vulnerability could lead to a StackOverflowError on very long inputs, and users are recommended to upgrade their packages. Additionally, an update for libcommons-lang-java has been released for both Debian 9 (Stretch) and 10 (Buster) ELTS.

[DLA 4079-2] openvpn regression update
[DLA 4286-1] libcommons-lang3-java security update
ELA-1510-1 libcommons-lang-java security update

Mbedtls, Firefox, Apache updates for Debian

Debian 10695 Published 2025-08-31 07:33 by Philipp Esselbach 0

Debian has issued multiple security updates to mitigate vulnerabilities in a range of packages. The mbedtls package for Debian 11 LTS has been updated from version 2.16.9-0.1+deb11u2 to 2.16.9-0.1+deb11u3. This update addresses an incomplete fix from the previous version that permitted use-after-free vulnerabilities in specific scenarios. Furthermore, the firebird4.0 for Debian 13 and apache2 packages for Debian 9 ELTS have been upgraded to versions 4.0.5.3140.ds6-17+deb13u1 and 2.4.25-3+deb9u21 (stretch), respectively. These updates address several vulnerabilities that could lead to denial of service or authentication bypass.

[DLA 4274-2] mbedtls security update
[DSA 5992-1] firebird4.0 security update
ELA-1509-1 apache2 security update

LibXML2, Node.js, UDisks2, OpenSSH updates for Debian

Debian 10695 Published 2025-08-30 07:50 by Philipp Esselbach 0

Debian has released several security updates to address vulnerabilities in various packages. LibXML2 (DSA 5990-1) for Debian 12 and 13 has been updated to fix a flaw that could lead to a heap use-after-free, while Node.js (DSA 5991-1) for Debian 12 has multiple vulnerabilities fixed, including denial of service, HTTP request smuggling, and privilege escalation. Additionally, UDisks2 (ELA-1508-1) for Debian 9 and 10 ELTS has an out-of-bounds read vulnerability fixed that may result in local privilege escalation. OpenSSH (ELA-1324-1) for Debian 9 and 10 ELTS has a machine-in-the-middle attack vulnerability fixed when the VerifyHostKeyDNS option is enabled, along with an information leak mitigation.

[DSA 5990-1] libxml2 security update
[DSA 5991-1] nodejs security update
ELA-1508-1 udisks2 security update
ELA-1324-1 openssh security update

Liquorix Linux Kernel 6.16-3 released

Debian 10695 Ubuntu 6924 Arch Linux 917 Published 2025-08-29 08:13 by Philipp Esselbach 0

Liquorix is a kernel replacement designed for desktop, multimedia, and gaming workloads, built with optimized configurations and sources for improved performance, and has been updated to the latest Linux kernel, 6.16.4. It features various tuning options and settings, including Zen Interactive Tuning, PDS/BMQ CPU Scheduler, High Resolution Scheduling, and Compressed Swap, among others. The Liquorix kernel is available for installation on Debian, Ubuntu, and Arch Linux systems through a simple install script or binary builds from the project's GitHub repository.